Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/8PLiusOVRspaPd-oSU4UnYcoADY.roa
File: 8PLiusOVRspaPd-oSU4UnYcoADY.roa (raw, json)
Hash identifier: M6fUS34eXxDemspMkwKXdnqbeQg7ek7CFmmG7kQAs8I=
Subject key identifier: F0:F2:E2:BA:C3:95:46:CA:5A:3D:DF:A8:49:4E:14:9D:87:28:00:36
Certificate issuer: /CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Certificate serial: 018CC2DABB27916B39D72178018F7CD1AB33
Authority key identifier: BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/8PLiusOVRspaPd-oSU4UnYcoADY.roa
Signing time: Mon 01 Jan 2024 02:29:23 +0000
ROA not before: Mon 01 Jan 2024 02:29:23 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 43937
IP address blocks: 213.187.255.0/24 maxlen: 24
213.187.254.0/24 maxlen: 24
213.187.224.0/24 maxlen: 24
213.187.225.0/24 maxlen: 24
213.187.226.0/24 maxlen: 24
213.187.230.0/24 maxlen: 24
213.187.231.0/24 maxlen: 24
213.187.232.0/24 maxlen: 24
213.187.233.0/24 maxlen: 24
213.187.227.0/24 maxlen: 24
213.187.228.0/22 maxlen: 24
213.187.228.0/24 maxlen: 24
213.187.229.0/24 maxlen: 24
213.187.237.0/24 maxlen: 24
213.187.238.0/24 maxlen: 24
213.187.239.0/24 maxlen: 24
213.187.235.0/24 maxlen: 24
213.187.236.0/24 maxlen: 24
213.187.251.0/24 maxlen: 24
213.187.252.0/24 maxlen: 24
213.187.253.0/24 maxlen: 24
213.187.248.0/21 maxlen: 21
213.187.248.0/24 maxlen: 24
213.187.249.0/24 maxlen: 24
213.187.252.0/23 maxlen: 23
213.187.250.0/24 maxlen: 24
185.6.179.0/24 maxlen: 24
185.6.176.0/24 maxlen: 24
185.6.177.0/24 maxlen: 24
185.6.178.0/24 maxlen: 24
178.255.10.0/24 maxlen: 24
178.255.11.0/24 maxlen: 24
178.255.8.0/24 maxlen: 24
178.255.9.0/24 maxlen: 24
178.255.13.0/24 maxlen: 24
178.255.14.0/24 maxlen: 24
178.255.15.0/24 maxlen: 24
178.255.12.0/24 maxlen: 24
78.24.53.0/24 maxlen: 24
78.24.54.0/24 maxlen: 24
78.24.55.0/24 maxlen: 24
78.24.52.0/24 maxlen: 24
78.24.49.0/24 maxlen: 24
78.24.50.0/24 maxlen: 24
78.24.51.0/24 maxlen: 24
78.24.48.0/24 maxlen: 24
94.190.144.0/24 maxlen: 24
94.190.145.0/24 maxlen: 24
94.190.151.0/24 maxlen: 24
94.190.152.0/24 maxlen: 24
94.190.147.0/24 maxlen: 24
94.190.148.0/24 maxlen: 24
94.190.149.0/24 maxlen: 24
94.190.150.0/24 maxlen: 24
94.190.146.0/24 maxlen: 24
94.190.159.0/24 maxlen: 24
94.190.158.0/24 maxlen: 24
82.116.131.0/24 maxlen: 24
82.116.132.0/24 maxlen: 24
94.190.154.0/24 maxlen: 24
94.190.153.0/24 maxlen: 24
82.116.128.0/24 maxlen: 24
94.190.155.0/24 maxlen: 24
94.190.156.0/24 maxlen: 24
94.190.157.0/24 maxlen: 24
82.116.129.0/24 maxlen: 24
82.116.130.0/24 maxlen: 24
82.116.138.0/24 maxlen: 24
82.116.139.0/24 maxlen: 24
82.116.134.0/24 maxlen: 24
82.116.135.0/24 maxlen: 24
82.116.136.0/24 maxlen: 24
82.116.137.0/24 maxlen: 24
82.116.133.0/24 maxlen: 24
82.116.145.0/24 maxlen: 24
82.116.141.0/24 maxlen: 24
82.116.142.0/24 maxlen: 24
82.116.143.0/24 maxlen: 24
82.116.144.0/24 maxlen: 24
82.116.140.0/24 maxlen: 24
82.116.146.0/24 maxlen: 24
82.116.147.0/24 maxlen: 24
82.116.152.0/24 maxlen: 24
82.116.148.0/24 maxlen: 24
82.116.149.0/24 maxlen: 24
82.116.150.0/24 maxlen: 24
82.116.151.0/24 maxlen: 24
82.116.159.0/24 maxlen: 24
82.116.155.0/24 maxlen: 24
82.116.156.0/24 maxlen: 24
82.116.157.0/24 maxlen: 24
82.116.158.0/24 maxlen: 24
82.116.153.0/24 maxlen: 24
82.116.154.0/24 maxlen: 24
185.249.222.0/24 maxlen: 24
185.249.223.0/24 maxlen: 24
2a02:7980:105::/48 maxlen: 48
2a02:7980::/32 maxlen: 32
Validation: Failed, certificate revoked on Fri 30 Aug 2024 09:21:22 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8c:c2:da:bb:27:91:6b:39:d7:21:78:01:8f:7c:d1:ab:33
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bd7d8178cec5cd376548a9049117f469c0a7431c
Validity
Not Before: Jan 1 02:29:23 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=f0f2e2bac39546ca5a3ddfa8494e149d87280036
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a9:15:2c:47:1c:3b:e1:da:fb:61:79:6d:e3:ef:
bb:ab:b7:33:5e:c6:a2:1d:61:b1:93:f5:f8:a3:9a:
c1:3a:c3:7f:99:6a:03:ae:02:1c:fb:a8:43:d9:f8:
7a:d6:79:1e:ee:1d:04:b0:dd:3a:73:e4:73:3b:0f:
02:c5:fe:be:95:8d:2d:32:4e:21:86:5a:48:8e:11:
37:3b:0a:d7:70:46:5c:8a:11:86:de:c5:63:2b:b9:
1b:c2:8a:18:bb:2b:c0:0b:3d:c4:70:a9:4c:bf:3e:
e6:5b:14:d6:7c:bc:ed:ff:78:75:b4:23:22:6e:d2:
1a:e3:6b:b1:a5:91:bc:18:f7:0d:a1:b4:54:80:0f:
71:43:55:ba:b8:6e:0e:ff:bd:ec:c7:0a:e7:00:71:
38:9b:dc:49:3d:30:de:21:ec:bf:e1:94:25:18:e3:
4b:f5:a9:18:f8:ea:b5:0d:9f:c2:22:55:6a:62:79:
d0:5c:20:5b:65:df:0b:44:ee:bf:de:4d:99:a1:48:
10:52:f8:bb:43:cb:86:79:78:66:cb:ee:15:24:60:
80:32:20:e4:ba:a4:9f:6e:47:a1:97:8b:cf:b8:0d:
3b:8d:41:36:b5:9e:65:7c:a8:2d:7f:c4:18:38:0f:
4c:87:49:f5:2a:cb:98:65:17:1f:f7:83:a6:d8:ef:
5e:9b
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
F0:F2:E2:BA:C3:95:46:CA:5A:3D:DF:A8:49:4E:14:9D:87:28:00:36
X509v3 Authority Key Identifier:
keyid:BD:7D:81:78:CE:C5:CD:37:65:48:A9:04:91:17:F4:69:C0:A7:43:1C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vX2BeM7FzTdlSKkEkRf0acCnQxw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/8PLiusOVRspaPd-oSU4UnYcoADY.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/f317b3-0668-4e04-9b6d-615aca51e2f6/1/vX2BeM7FzTdlSKkEkRf0acCnQxw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
78.24.48.0/21
82.116.128.0/19
94.190.144.0/20
178.255.8.0/21
185.6.176.0/22
185.249.222.0/23
213.187.224.0-213.187.233.255
213.187.235.0-213.187.239.255
213.187.248.0/21
IPv6:
2a02:7980::/32
Signature Algorithm: sha256WithRSAEncryption
57:ae:76:73:de:53:6e:72:5f:91:ee:09:dc:22:e3:45:92:42:
c6:7a:9c:39:76:53:c2:95:ee:e9:3f:de:dc:64:a4:89:75:03:
14:cc:fc:3d:5d:11:ad:56:14:78:a4:8d:12:24:2d:c0:5f:fe:
ad:b7:b5:28:e6:7d:31:7a:0f:76:84:7a:b9:bb:ba:3e:20:44:
16:8a:5b:7f:a1:d4:07:18:c8:15:28:39:19:4a:32:de:77:b1:
53:e1:90:8f:80:cc:38:9c:28:9d:e1:0f:d2:ce:de:b4:7a:79:
83:cb:bf:16:d4:63:f2:b5:80:1f:cb:81:bf:01:c8:62:c3:6f:
45:48:bc:a8:e9:19:fb:85:c7:9f:0f:62:91:c4:70:f8:90:30:
e0:01:71:c4:e0:4a:46:06:87:97:7c:42:6b:3f:35:0e:e9:3c:
a0:5d:d6:cb:75:21:50:8c:29:03:26:cf:ff:2b:06:de:07:72:
d1:dc:11:be:78:de:3f:39:fd:e6:39:63:f9:e5:73:20:af:bf:
1d:c8:64:8a:77:4f:8a:89:04:0d:67:5a:dc:1f:70:ba:9c:c1:
55:1e:fc:5a:a6:f7:92:1b:fa:c2:71:4d:b0:88:a3:57:30:6a:
e4:92:1b:7d:44:c7:05:e1:a3:7d:b9:44:fe:d5:0c:d0:fc:a2:
7c:03:d1:35
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Fri Aug 30 11:05:22 2024 by rpki-client on console-ams.rpki-client.org